4b99c56a63521cfd4ac8a7648a92a5737ebc2b009d442e10445a8d44db846d47

Analysis

max time kernel
141s
max time network
118s
platform
windows7_x64
resource
win7-20240729-en
resource tags

arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
submitted
20/08/2024, 16:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

38 34 35/s/v.ogg
Size

316KB
MD5

ab0ea652ddc36c85fb8f2ece0539ef1e
SHA1

74df86594d10481fda79af631fcbf6b62ee41744
SHA256

5e2341e2593a52bbd83b664612e20064219054c0fa7da3f47b1dd2cca00cb10f
SHA512

eb9ce4edf7b1d3b05512c294504cb8d6fe3353831df00aa5d24b37c0a5aae18a06ba21b2529e6db8ff01d7f67ca687e33b70863b566a926e83684b960930805a
SSDEEP

6144:Tc5+sIjDnfubOeN1KqimMe0QzbFZUDxEYLw2egN8iJSUHxUWMESAObQ:I59YDfubOeNoqimMe0QzbFqDxEYLw2Nr

Score

1^/10

Malware Config

Signatures

Suspicious behavior: AddClipboardFormatListener 1 IoCs

pid	Process
2196	vlc.exe

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
2196	vlc.exe

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	2196	vlc.exe
Token: SeIncBasePriorityPrivilege	2196	vlc.exe

Suspicious use of FindShellTrayWindow 8 IoCs

pid	Process
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe

Suspicious use of SendNotifyMessage 7 IoCs

pid	Process
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe
2196	vlc.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
2196	vlc.exe

C:\Program Files\VideoLAN\VLC\vlc.exe
"C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "C:\Users\Admin\AppData\Local\Temp\38 34 35\s\v.ogg"
1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of FindShellTrayWindow
- Suspicious use of SendNotifyMessage
- Suspicious use of SetWindowsHookEx
PID:2196

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2196-5-0x000000013F070000-0x000000013F168000-memory.dmp

Filesize
992KB

Download
memory/2196-6-0x000007FEFA5D0000-0x000007FEFA604000-memory.dmp

Filesize
208KB

Download
memory/2196-13-0x000007FEF6970000-0x000007FEF698D000-memory.dmp

Filesize
116KB

Download
memory/2196-14-0x000007FEF6950000-0x000007FEF6961000-memory.dmp

Filesize
68KB

Download
memory/2196-12-0x000007FEF75F0000-0x000007FEF7601000-memory.dmp

Filesize
68KB

Download
memory/2196-11-0x000007FEFA570000-0x000007FEFA587000-memory.dmp

Filesize
92KB

Download
memory/2196-10-0x000007FEFA5B0000-0x000007FEFA5C1000-memory.dmp

Filesize
68KB

Download
memory/2196-9-0x000007FEFAF00000-0x000007FEFAF17000-memory.dmp

Filesize
92KB

Download
memory/2196-7-0x000007FEF7610000-0x000007FEF78C6000-memory.dmp

Filesize
2.7MB

Download
memory/2196-8-0x000007FEFB370000-0x000007FEFB388000-memory.dmp

Filesize
96KB

Download
memory/2196-15-0x000007FEF53F0000-0x000007FEF64A0000-memory.dmp

Filesize
16.7MB

Download
memory/2196-16-0x000007FEF51E0000-0x000007FEF53EB000-memory.dmp

Filesize
2.0MB

Download
memory/2196-17-0x000007FEF6900000-0x000007FEF6941000-memory.dmp

Filesize
260KB

Download
memory/2196-18-0x000007FEF51B0000-0x000007FEF51D1000-memory.dmp

Filesize
132KB

Download
memory/2196-19-0x000007FEF5190000-0x000007FEF51A8000-memory.dmp

Filesize
96KB

Download
memory/2196-20-0x000007FEF5170000-0x000007FEF5181000-memory.dmp

Filesize
68KB

Download
memory/2196-21-0x000007FEF5150000-0x000007FEF5161000-memory.dmp

Filesize
68KB

Download
memory/2196-22-0x000007FEF5130000-0x000007FEF5141000-memory.dmp

Filesize
68KB

Download
memory/2196-23-0x000007FEF5110000-0x000007FEF512B000-memory.dmp

Filesize
108KB

Download
memory/2196-24-0x000007FEF50F0000-0x000007FEF5101000-memory.dmp

Filesize
68KB

Download
memory/2196-25-0x000007FEF50D0000-0x000007FEF50E8000-memory.dmp

Filesize
96KB

Download
memory/2196-26-0x000007FEF50A0000-0x000007FEF50D0000-memory.dmp

Filesize
192KB

Download
memory/2196-27-0x000007FEF5030000-0x000007FEF5097000-memory.dmp

Filesize
412KB

Download
memory/2196-28-0x000007FEF4FB0000-0x000007FEF502C000-memory.dmp

Filesize
496KB

Download
memory/2196-29-0x000007FEF4F90000-0x000007FEF4FA1000-memory.dmp

Filesize
68KB

Download
memory/2196-30-0x000007FEF4F30000-0x000007FEF4F8C000-memory.dmp

Filesize
368KB

Download
memory/2196-31-0x000007FEF4DB0000-0x000007FEF4F30000-memory.dmp

Filesize
1.5MB

Download
memory/2196-32-0x000007FEF4D90000-0x000007FEF4DA7000-memory.dmp

Filesize
92KB

Download
memory/2196-33-0x000007FEF4D80000-0x000007FEF4D90000-memory.dmp

Filesize
64KB

Download
memory/2196-34-0x000007FEF4D50000-0x000007FEF4D7F000-memory.dmp

Filesize
188KB

Download
memory/2196-35-0x000007FEF4D30000-0x000007FEF4D41000-memory.dmp

Filesize
68KB

Download
memory/2196-36-0x000007FEF4D10000-0x000007FEF4D26000-memory.dmp

Filesize
88KB

Download
memory/2196-40-0x000007FEF4BC0000-0x000007FEF4BD2000-memory.dmp

Filesize
72KB

Download
memory/2196-39-0x000007FEF4BE0000-0x000007FEF4BF1000-memory.dmp

Filesize
68KB

Download
memory/2196-37-0x000007FEF4C40000-0x000007FEF4D05000-memory.dmp

Filesize
788KB

Download
memory/2196-38-0x000007FEF4C20000-0x000007FEF4C35000-memory.dmp

Filesize
84KB

Download
memory/2196-46-0x000007FEF49A0000-0x000007FEF49B1000-memory.dmp

Filesize
68KB

Download
memory/2196-45-0x000007FEF49C0000-0x000007FEF49D1000-memory.dmp

Filesize
68KB

Download
memory/2196-44-0x000007FEF49E0000-0x000007FEF49F1000-memory.dmp

Filesize
68KB

Download
memory/2196-43-0x000007FEF4A00000-0x000007FEF4A14000-memory.dmp

Filesize
80KB

Download
memory/2196-41-0x000007FEF4A40000-0x000007FEF4BBA000-memory.dmp

Filesize
1.5MB

Download
memory/2196-42-0x000007FEF4A20000-0x000007FEF4A33000-memory.dmp

Filesize
76KB

Download